$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/23EF2DF6351F11F097C3DD64C4F9AE02.roa File: 23EF2DF6351F11F097C3DD64C4F9AE02.roa (raw, json) Hash identifier: vYmo1YqkZ6u777Cl+DYM0NwR/YgtaZw5RAQwgLjZyPY= Subject key identifier: FE:66:86:9D:6D:2A:BE:FA:8C:91:A9:A0:BD:48:5A:DC:E3:DD:3C:BD Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D6F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/23EF2DF6351F11F097C3DD64C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:57 +0000 ROA not before: Thu 28 Aug 2025 14:54:57 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149148 IP address blocks: 103.38.236.0/23 maxlen: 23 2400:c0e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19823 (0x4d6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:57 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06dc1-b594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:44:b9:9e:80:93:99:4e:3b:5c:11:3c:5b:34: e5:e0:ea:2d:c9:a5:af:ae:a5:7d:ec:5c:ad:cf:fa: 42:77:6b:9c:3d:48:3f:a2:b4:f7:8c:c2:43:76:b0: 41:f8:91:7b:86:5d:09:ac:02:21:7b:40:0b:14:09: cf:83:44:f5:ce:14:26:70:ee:09:60:bc:9e:f5:bb: 63:05:70:9c:fe:c7:9e:67:4e:54:f9:c8:01:03:48: aa:f6:8c:c6:20:b3:7d:5f:16:21:dd:ca:2d:e5:2c: 1e:11:23:e6:1b:85:c4:5f:5f:8b:4f:5c:6e:7a:34: 27:88:6b:81:1e:38:5a:2a:27:32:4b:8c:96:54:5f: 8d:55:bd:40:14:01:b7:4d:b0:74:85:d5:a2:ea:61: 4e:e5:a7:31:06:d4:f1:aa:76:aa:4a:9a:23:3a:ca: ff:77:7e:85:bf:af:76:e2:60:63:eb:6c:e4:42:44: eb:c7:aa:bf:c4:b7:b4:3d:b3:c8:f2:3e:88:4f:01: f1:45:e9:5f:fa:8b:16:d9:22:e0:3c:23:0f:5f:fa: 1e:66:bd:9d:f3:4e:a5:57:8f:34:a9:98:ba:01:39: 38:4d:24:8a:68:85:39:e2:58:bd:10:21:75:a5:69: 10:5a:41:e7:a8:8b:43:33:7a:11:53:dd:dd:71:e4: b6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:66:86:9D:6D:2A:BE:FA:8C:91:A9:A0:BD:48:5A:DC:E3:DD:3C:BD X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/23EF2DF6351F11F097C3DD64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.236.0/23 IPv6: 2400:c0e0::/48 Signature Algorithm: sha256WithRSAEncryption b5:13:ef:25:7e:3c:8d:bb:85:47:c8:99:18:23:22:87:61:52: 7a:92:d3:63:d0:3a:06:34:c7:87:53:01:9c:68:a6:71:ce:74: 18:ed:64:37:a2:30:d1:16:f3:d7:05:e9:83:5b:e5:a9:08:3d: a3:34:a7:0f:28:2b:49:95:49:1f:dc:c4:6e:4f:6e:3a:f7:9b: 33:02:95:9a:e4:92:49:51:f1:87:b2:78:12:4b:ff:5c:77:83: b0:5d:07:7b:d8:11:a3:2d:cc:4e:c8:6e:20:ab:6e:c6:09:03: ec:a1:72:ef:e0:bd:03:7f:d2:c4:fe:d0:25:61:77:2a:b2:66: 76:71:62:66:93:68:59:90:59:8b:8d:f5:89:b8:19:f6:50:65: 73:09:c5:fd:9c:64:34:f6:60:59:f9:16:fb:7b:0b:2a:44:1d: 0f:8b:3e:55:37:80:a7:ed:5a:56:45:ba:7a:a1:fd:a8:f8:fa: a7:a3:2a:0f:60:a5:6f:db:ec:23:65:ae:3e:4f:fe:f6:d8:a4: c7:f0:93:d1:96:46:e6:e5:5a:ac:2e:c7:bb:17:95:cc:b2:93: cf:19:86:d0:1c:5e:9c:52:86:be:57:70:c6:79:4b:e9:65:88: 2b:d8:f7:f9:f6:92:b4:3a:1c:69:24:db:76:4b:e6:ea:ad:9c: 01:c8:bc:4b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDU3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRjMS1iNTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0S5noCTmU47XBE8WzTl4OotyaWvrqV97Fytz/pCd2ucPUg/orT3jMJDdrBB +JF7hl0JrAIhe0ALFAnPg0T1zhQmcO4JYLye9btjBXCc/seeZ05U+cgBA0iq9ozG ILN9XxYh3cot5SweESPmG4XEX1+LT1xuejQniGuBHjhaKicyS4yWVF+NVb1AFAG3 TbB0hdWi6mFO5acxBtTxqnaqSpojOsr/d36Fv6924mBj62zkQkTrx6q/xLe0PbPI 8j6ITwHxRelf+osW2SLgPCMPX/oeZr2d806lV480qZi6ATk4TSSKaIU54li9ECF1 pWkQWkHnqItDM3oRU93dceS2pQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP5mhp1t Kr76jJGpoL1IWtzj3Ty9MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjNFRjJERjYz NTFGMTFGMDk3QzNERDY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnJuwwDwQCAAIwCQMHACQAwOAAADANBgkqhkiG9w0BAQsF AAOCAQEAtRPvJX48jbuFR8iZGCMih2FSepLTY9A6BjTHh1MBnGimcc50GO1kN6Iw 0Rbz1wXpg1vlqQg9ozSnDygrSZVJH9zEbk9uOvebMwKVmuSSSVHxh7J4Ekv/XHeD sF0He9gRoy3MTshuIKtuxgkD7KFy7+C9A3/SxP7QJWF3KrJmdnFiZpNoWZBZi431 ibgZ9lBlcwnF/ZxkNPZgWfkW+3sLKkQdD4s+VTeAp+1aVkW6eqH9qPj6p6MqD2Cl b9vsI2WuPk/+9tikx/CT0ZZG5uVarC7HuxeVzLKTzxmG0BxenFKGvldwxnlL6WWI K9j3+faStDocaSTbdkvm6q2cAci8Sw== -----END CERTIFICATE-----Generated at Wed Oct 22 21:05:22 2025 by rpki-client